GLAuth version 2.3.0 has been released. https://ldap.com/2023/10/02/glauth-2-3-0/

#LDAP #GLAuth

GLAuth version 2.2.0 has been released. https://ldap.com/2023/07/04/glauth-2-2-0/

#LDAP #GLAuth

Anyone on Fedi who has experience with running #GLAuth?

If so, did you like it? Would love to hear about your experiences.

Have you compared it to e.g. OpenLDAP, 389 Directory Server or ApacheDS?

GLAuth recently popped up on my radar and it seems like a neat solution when you don’t need a full-blown LDAP server.

https://glauth.github.io/

@pezhore

I had deployed #FreeIPA before briefly but recently I chose #GLauth which is lighter than both FreeIPA and #OpenLDAP. I'll probably revisit it at some point and I'll be sure to check out the #ansible roles for it, but for now #GLauth is sitting in fine.

I like that GLauth can be configured by a singular text file which I can easily version in Git. I'll have to see if there are ansible roles for adding GLauth user entires. I will also be using #Keycloak for my first test.

As for running a three-node-cluster yeah I think you'll be happy with it. I'm using #Terraform with the #Proxmox provider. You need to set up an API key and then the template OS. The easiest way is to use a Cloud image that has cloud-init capabilities so you can seed users/keys. That way your later #Ansible playbooks can hook in easily. You can probably also find a strictly Ansible way to deploy to Proxmox on Ansible Galaxy, but I like using Terraform where it fits best -- provisioning.

Good point about secret management, I'll be using a combination of tools but HC #Vault will be among them.

What are your learning goals with your lab and what do you tend to do with yours?

@silverwizard for my somewhat simple setup I used #openldap for a while but it was honestly overkill. I found #glauth and that has fit the bill nicely for me. I don't have any experience with HA/failover for it though.

I've seen some pretty nifty #homelab network maps on here, I need to get around to making something like that.

I'm kind of addicted to spinning up and hosting cool and useful services in #Docker at home (and/or on a #VPS).

Here are a few of them I use on a regular basis:

• #AudioBookshelf (audiobook server)
• #BoringProxy (reverse proxy and tunnel manager)
• #CalibreWeb (ebook server)
• #croc relay (file transfer utility)
• #EternalJukebox (your favorite song ∞)
• #glauth (LDAP server with 2FA)
• #MIMIC3 (TTS engine)
• #mirotalk (WebRTC video conferencing)
• #nitter (Twitter frontend/proxy)
• #Photoprism (photo gallery)
• #pihole with #dnscrypt (DNS-based adblocker)
• #Plex (media server)
• #PodGrab (podcast server)
• #PretendYoureXyzzy (Cards Against Humanity clone)
• #StepCA (certificate authority)
• #TransmissionOpenVPN (Transmission torrent client and OpenVPN in Docker)
• #UptimeKuma (service monitoring tool)
• #VaultWarden (BitWarden-compatible server)
• #WireGuard (VPN)

Anything super nifty y'all think I'm missing?